6 matches found
Azure Linux 3.0 Security Update: application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector (CVE-2021-44716)
The version of application-gateway-kubernetes-ingress / cf-cli / cri-o / csi-driver-lvm / golang / keda / moby-engine / node-problem-detector installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-44716...
CVE-2023-44487 affecting package csi-driver-lvm for versions less than 0.4.1-13
CVE-2023-44487 affecting package csi-driver-lvm for versions less than 0.4.1-13. This CVE either no longer is or was never applicable...
CVE-2021-44716 affecting package csi-driver-lvm for versions less than 0.4.1-15
CVE-2021-44716 affecting package csi-driver-lvm for versions less than 0.4.1-15. A patched version of the package is available...
CVE-2023-44487 affecting package csi-driver-lvm for versions less than 0.4.1-13
CVE-2023-44487 affecting package csi-driver-lvm for versions less than 0.4.1-13. A patched version of the package is available...
AZL-31305 CVE-2023-44487 affecting package csi-driver-lvm for versions less than 0.4.1-13
The HTTP/2 protocol allows a denial of service server resource consumption because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023...
AZL-33577 CVE-2021-44716 affecting package csi-driver-lvm for versions less than 0.4.1-15
net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests...